CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2024/12/27 9:15 p.m.•1 views

CVE-2024-50713

SmartAgent v1.1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tests/interface.php...

9.8CVSS5.8AI score0.00201EPSS

Vulnrichment•added 2024/12/27 12:0 a.m.•5 views

CVE-2024-50713

SmartAgent v1.1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tests/interface.php...

8.3AI score0.00201EPSS

CVE•added 2024/12/27 12:0 a.m.•56 views

CVE-2024-50713

CVE-2024-50713 affects SmartAgent v1.1.0, with a SQL injection via the id parameter on /tests/interface.php. Root cause: lack of input validation/escaping for externally supplied SQL statements, enabling arbitrary SQL execution. Impact: high likelihood of data exposure or modification (as per sou...

9.8CVSS8.5AI score0.00201EPSS

Exploits1References2Affected Software1

Cvelist•added 2024/12/27 12:0 a.m.•7 views

CVE-2024-50713

SmartAgent v1.1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /tests/interface.php...

0.00201EPSS

Positive Technologies•added 2024/12/27 12:0 a.m.•2 views

PT-2024-34396 · Unknown · Smart Agent

Name of the Vulnerable Software and Affected Versions: SmartAgent version 1.1.0 Description: The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the id parameter at the "/tests/interface.php" API endpoint. Recommendations: For SmartAgent version 1.1.0,...

9.8CVSS7.4AI score0.00201EPSS

Exploits1References6

0day.today•added 2024/11/06 12:0 a.m.•290 views

SmartAgent 1.1.0 SQL Injection Vulnerability

Exploit Title: SmartAgent v1.1.0 - Unauthenticated SQL Injection SQLi Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can inject SQL queries through a POST request to the vulnerable...

0day.today•added 2024/11/06 12:0 a.m.•323 views

SmartAgent 1.1.0 Remote Code Execution Vulnerability

Exploit Title: SmartAgent v1.1.0 - Unauthenticated Remote Code Execution Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can access a php script called...

0day.today•added 2024/11/06 12:0 a.m.•268 views

SmartAgent 1.1.0 Server-Side Request Forgery Vulnerability

Exploit Title: SmartAgent v1.1.0 - Server-Side Request Forgery SSRF Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can trigger the web server to perform web requests to the localho...

Packet Storm•added 2024/11/01 12:0 a.m.•433 views

SmartAgent 1.1.0 SQL Injection

Exploit Title: SmartAgent v1.1.0 - Unauthenticated SQL Injection SQLi Date: 01-10-2024 Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can inject SQL queries through a POST request ...

Packet Storm•added 2024/11/01 12:0 a.m.•372 views

SmartAgent 1.1.0 Remote Code Execution

Exploit Title: SmartAgent v1.1.0 - Unauthenticated Remote Code Execution Date: 01-10-2024 Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can access a php script called...

Packet Storm•added 2024/11/01 12:0 a.m.•326 views

SmartAgent 1.1.0 Server-Side Request Forgery

Exploit Title: SmartAgent v1.1.0 - Server-Side Request Forgery SSRF Date: 01-10-2024 Exploit Author: Alter Prime Vendor Homepage: https://smarts-srlcom.com/, https://smartagent.com Version: Build v1.1.0 Tested on: Kali Linux An unauthenticated user can trigger the web server to perform web reques...